MS1-489US 



110 



a 



Session-State 
Storage Tier 1 



Web Browser 
(Client) 



102 




120 



130 



ooo 



Session-State 
Storage Tier 2 



100 



104 



Web Server 



Session-State 
Storage Tier 3 



Web ^ 
Database 



106 



User Identification 



Current Logon Status 



Time of Last Contact 



142 
144 
146 



^ — 140 



MS1-489US 




MS1-489US 



610 



612 




Generate session-state token 



614 



I 



Send session-state token to the client 



T3 



402 



• • • 



> 404 


F1 T2 

7 V 1 


T4 T5 T6 

7 V V V 


2525 


2526 


2527 


2528 


2529 


2530 


2531 



• • • 



9am 10am 11am \ 12am \ 1pm \ 2pm \ 3pm 

406 Wo8 WlO Wl2 ^414 



400 



7<^. 4 



MS1-489US 



510 



Getting a current time period identification indicator 
(tlmeld) representing a current time period 



512 



Getting a user identifier (UserID) that identifies a user of 

a client of a server 



514 



Getting a code key 



516 



Concatenating UserID, TimeID, and code key to get encoded 

session-state token 



518 



One-way encrypting the encoded session-state token to 
get one-way encrypted, session-state token 



MS1-489US 



710 



Receiving a user identifier (UserID) that identifies a user of a client 
of a server and a one-way encrypted, session-state token 



712 



GENERATING A ONE-WAY ENCRYPTED, 
CONFIRMATION SESSION-STATE TOKEN 




716 



Match V access 



Allow \ 
access J 



718 



> 



GENERATING A NEW ONE-WAY ENCRYPTED, CONFIRMATION 
SESSION-STATE TOKEN USING DATA REPRESENTATIVE OF AN 
EARLIER TIME PERIOD 



No Match 




722 





f \ 

Issuing a token 
and sending it 
to client 


* ► 

Match 


724^ 

\ i 


r 



No Match 



Force \ 
Re-authorization J 



Allow 
access 



MS1-489US 



810 





f ^ 

Receiving a user-associated TimeID 
from a client 




812 




r 




Designating a first time period identification indicator 

(TlMElD) FOR A FIRST TIME PERIOD 


1 


r 




816 



Match 



Allow \ 
access J 




818 



No Match 



Designating a prior TimeID period prior 
to the first time period 




